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(57) Abstract 



In a method and a de- 
vice for partial encryption and 
progressive transmission of im- 
first section of the un- 
afe file is compressed at reduced 

duality without decryption, and 
a second section of the image 
file* encrypted. Users having 
acteiw^ropnatedec^uon 

keywords can decrypt this sec- 
SHSon. The first section 
together with the decrypted sec- 
Sfd section can then te viewed 
as a full quality image. The stor- 
age soace required for stonng the 
tot and section u>geA«r.s«- 
sentially the same as the stor 
S space required for stonng 
the unencrypted full quality mv 
aee By using the method and 
device as described herein stor- 
u» and bandwidth requirements 
for partially encrypted image sjs 
reduced. Furthermore, object 
based composition and process- 
or encrypted objects are fa- 

ciHtated. and ROIs can be en- 
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A METHOD AND A DEVICE FOR ENCRYPTION OP IMAGES 

TECHNICAL ™» „ , ^ ^ a de vice for 

The present invention relates 

encrypting images. 

_ _ pTrpiJODND OF THE INVENTION AND PRIOR ART 

BACKGROUND OF technic al field which becomes 

Encryption of digital datax informat ion or 

^nnrtant when transmitting ana stormy 

important wn available to a user paying for 

information.^ only £or dlgital 

tr^-Tl-^r— ■ Examples of encryption methods are DES. 
triple DES and the public-key RSA method. 

= ™„ be stored on servers end distributed over e 
Digital ^ages can be store _ ^ ^ 

telecce^ication network as d.grt^ r g „ . gd-ROM. 

- distributed usrug a physical to ^ ^ ^ ^ 

service provr ders_ « mlgbt be suit able to 

their business model. In thrs m to 

<>«« *""Vsers some of ^ -a — * 

rrterlnlrrto ^vent - users from having full access 

to all image data. 

be offered for sale on the Internet. 
Hews P^7™ l^ ts to alloW customers to download a 
The service provider wan . for eva luation. 

ver sion of the image with reduced ^ service and 

i= that want to publish an image, pay to 
journals, that warn- f -, itv image, 

are then allowed to download a full quality 

..ever, such a service provider ^ ^ 
and download bit rates. An image p ^ CD _ R0Ms are given 

w-t to distribute images » on ^ ^ the imag es at a 

away or sold for a low prxc^ Cu ^ ^ full 

reduced quality, but they must pay f ^ storage 

rn the case the image provider vr^ 

quality- In the ca , ficiently a s possible. 

space on the CD-ROM as efficiently 
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It is also essential that customers always can aooess 
X -er friendly, standardised software, xmag. probers are 
reluctant to design and support special image viewers and 
customers don't want a proliferation of viewing tools. 

Presently, image providers have to store two J-"^* 
i^ges stored. The full quality version xs stored as an 
encrypted image file. This means that the image first rs 
jessed and stored in a confessed file format such as OPBG 
Z gif The compressed file is then encrypted usxng a suxtable 
l^tiln \oo7and an encrypted image file is stored The user 
Ta^irst decrypt this file and then access 
compressed image file using an image viewing tool Reduced 

^ity images are produced hy ^^^^ s "or d^a fparate 
i^ges in an image editing program. They are stored 

compressed image files. 

.„ ,- he case a customer first wanes to 
remote access in the case a 1 reso i ut ion 

low resolution image before paying for the full 



version. 



This results in a ^^^^ 

version image contains a l«g fract ^ ^ ^ 
information. Images that are off 

i„ particular - P-rded f or pre« ^ o£ 

since journal editors wan hia hest quality for 

tb. image content and accepts only t* ^ ^ % ^ ^ 

printing. The reduced quality image could requ 

P 9 . ftf the fu ii quality image, 

storage space of tne vi 

which is descrm inc ludes many new 

Verification Model Version 2.0, coding 
penalities in comparison with other . ^ & 

techniques. They include, in P art ^ ch applica tion domain 

wide range of progressive image formats. 
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s^^jnrL-. . a lso „ t £or * 

decodable coding units. 

ni - «- inventi ° n to t th L 

iTa transmission scheme transmitting partially encrypted, 
images. 

S - STS: can he depressed at reduce* ^ «y 
section o quality image is not 

^aVold section of the i*» g e - is 

encrypted . 

Tta , users -. access tc S ^JSCr^ - 
decry pt this second section. The fir y 
decrypted second section can hen h v e ^ ^ ^ 

i^age. The storage space recurred f ^ 

t. nrr pther is essentially tne s<*i» 

sectl on together ^^ed full quality image. The 

required for ion Spending on the 

encryption of the seco q£ ^ se=ond 

Th e .age can also he -^J? ^"^S^" 
each section may he may he stored unencrypted. 

me thod and Keyword^ Sc*e secti ^ ^ 

ftn important element of » a Mt o£ 

herein is that the compressed images co ^ ^ 

ind ependently decodahle coding units compresse d 

„«.lbl. to perform encryption operations 
^without performing entropy decoding. 
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A reduced guality ^ can be produce, accord Co several 
different main schemes, such as: 
1) Reduced resolution 

2 Reduced accuracy of the transform coefficients 
3) delusion of predefined regions of interest (ROD 

ho combined so that a reduced quality image is 
Tfcese methods can be combined so accuracy 
e.g. produced by reducing both the resolution 
of the transform coefficients. 

_ , and device for storing and transmitting 
BY Td^asTe r^ed herein, several advantages are obtained, 
^ge data as desc Afferent versions of an 

Tfcus, there xs no need to store t different quality 

iffl age if different users - to hav ^acces ^ ^ 

of the one and same image. Also tran resolut ion, 
iower if the information content of £ resolut ion 

i.nage data can be reused when transmitting the highe 

image data- 

BRIEF BESCRIRTIOH « M» = D ™ ^ in _ e detiU ^ 

. Rig. 1 ,s a general view of the - 
Figs 2a and 2b shows encryption of images 

when encrypting an image. client server process. 

. Fig . 4 is a diagram illustrating a clien 
. ^g. 5 is a view of an encryption header 

DETAILED 

DESCRIPTION of an original. 

in Rig- 1. a general view of Che frle ^ ^ ^ fiu 

nlg b resolution, ^ ^ lnde pendenti y deccdable coding 

consists of a number of ^««^ '/secure shown in Rig. 

sections 101. 103 and 105. In th .fx ^ rf a ^ 

x . th e section 101 ^» ^ encrypci on and will therefore 

resolution image, is coae 

be possible to decode by any recerver. 
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■ ,03 which comprises data. «hich combined with the 
The section 103. .„ a solution version of 

r^re ° I- e. is encrypted using a first encryption 
the high re tovlJig access to the correct 

::^;i" ~ » decode the data stored in the 

section 103 . 

• ^« which combined with the 

_ ^. . „ T05 which comprises data, wmcn 

section 105. 

Thus, decoding of the section - ^ ^ o£ the 

101 r esult in a -^-^ ^".ith 2 — data 
fr" fectfon: - and X03 result in a fail resolution image 
115. 

• ►hp JPEG 2000 standard without 

Furthermore , 

implementation in cue u/ ~ -- , £ication 

Ze of progressive modes can he supported. 

„^.l 2 0 a coding unit is a part of 
tt 0PK3 .000 verification «od el 2 0. ^ ^ ^ 

ch e oitstream that encode ^ described as any 

sub hand. in general, a coding unit « . nfoCTation . The general 

ind ependently decodahle suhset £^ u to inc iude so 

onanism for specifying ^ b * * ^ , lt u 

called tags that specifies the next co g ^ . s 

Efficient to ^"^-^an ^ defined in the header that 
ta own, . Several specific modes can ^ ^ ^ ^ 

defines a default coding unit ord 
ar e needed for inserting explicit tags. 
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In Figs. 2a and 2b block diagrams describing how encryption can 
be lamented in the JPEG 2000 encoder and decoder 
respectively, are shown. 

• Mo 2a a block diagram where encryption is performed 
Thus, m Fig 2a a block « Coding ^ encer 

after entropy codxng » the en ^ ^ 

an entropy coding blocfc 2Ui. ^ 

^its Ire entropy coded using some suitable entropy code. The 
r t put from tie Lock 202 is fed to a selector which selects a 
J^abls encryption method for each entropy coded codmg unit. 
Some coding units can be selected to not be encrypted at all. 

in response to the selection made i* the selector 203 the 
entropy coded coding units are encrypted in a block 205. The 
Screed coding units together with the not encrypted codrng 

then form a combined output data stream, wh,ch can be 
stored or transmitted. 

• • ok , decoder for decoding the bit stream generated by 
in Fig. 2b a decoder tor a » encrypted and not 

. - n piCT 2 a is shown. Thus, first encrypt 
the encoder Ln Fig. 2a & selector 251 , 

encrypted coding units enter the de 

. • — v. selects a suitable decryption method tor e 
which s ^ ectS received coding unit is not 

coded coding unit, or 11 i- 

encrypted it is directly transmitted to a block 25S. 

.. -h, selection made in the selector 255 the 
in response to the selects bloc]c 253 using a 

entropy coded coding units are - itS ro 

suitable decryption algorxthm The decrypt ^ 
Chen fed to the block 255. In th .block 25 decryptioll 
from fed directly from the selector 251 and ^ 

Lock 253 are entropy ^\™\ C ^X C \° a [Z* which is fed 
output data stream corresponding to the data 
to the entropy coding block 201 » Frg. 2a. 

E ach coding unit in the cransmiss "ock . 
Fi gs. 2a and 2b is ban* ed separa tely with any user 

Each coding unit can also^ >° ^ in che sa me image 

rren^r^erL encryption methods. The 
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, io n method used can further be an encryption algorithm 
encryption method useo. aenerating keywords, 

combined with a keyword or a method for generati g yw 

identical algorithms hue data 
n^c^intion (EMD) as shown in Figs. 2a and 2D is o^y a 
Description waui ala orithm identifiers that is needed 

such as session keywords or algorithm 

«fv the Encryption Method. Unit Encryption State (DBS) is 
to specify the Encrypti . g encrypted . 

a symbol that for each coding unit aennes 

xn Fi* 3 a flow chart illustrating different steps carried out 

^301 Is then coded using a coding algorithm generating 
in step 301 is cnen t-u 2000. in a step 

independently decodable coding units, e.g. 



303. 



«f the coding units of the image coded 
in step 303 are encryp be encrypte d 

— - OSS. The ^ ^e— «~ ' "~ ~ 

can be set in « cor ^~^ rre ' ^ to SOU. higher order 
cio se to have ccdmg unrts ccrrespon g ^ ^ 

bit - Pl n et »TsTc -C;^ are .erged into a 
and the coding units whicn 
single bit stream. 

transmitting an image encoded -cord^ ^ & ^ 
described in conjunctxon with Fig ^ can then issU e 

401 is connected to a server ^ particular im age, step 

a request towards the server * 



405. 



^v, a rndinq units of the 
Th e server ,03 replies by ^^^^tt -crVPt- 
im age which are not t J cli ent who now will have 

coding units can he decoded by the ^ . mage 

access to a low -solution vers on o r^ p ^ ^ ^ ^ 

Ba sed on this '-—^^ .J.!! i,age. X, so the 
the image in a higher resoiu 
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client transmits a request to the server requesting such 
information, step 409. 

The server replies by sending a repeat to the client revesting 
the client to agree to the conditions for transmitting the 
" g her -solution version of the image, step 41! . If the client 
agrees via a message 413, e.g. comprising a card number or 
account number from which to bill the cost for the image the 
server sends the encrypted coding units together with a key word 
by means of which the encrypted coding units can be decrypted. 

step 415. A secure method for key distribution should be used. 

sJ^es of such secure methods are described in W. Stallrngs 

■ Data and computer Communications-, p 635 -637. Prentice-Hall 

1997 fifth edition ISBN 0-13-571274-2. 

t« the client already has access to the unencrypted and 
encrypted coding units, for example if he has purchased a CB-BOm 
"^images coded as described herein. The scheme as described 

„ he modified so that no image data is 

in conjunction can be ^£ to conditions se t by 

transmitted. Instead the client y g ^ 
the server in order to have access to the key worai 
regulrea to decrypt the encrypted coding units of the CD-HOM. 

In the case when the method and device as described herein is ^ 

us ed when encoding imag e — g t^he JPEG ^ 

1. advantageous if the ™ Header t hat is included in the 

encryption methods £J£Z Encryption Tag that is merged with 

image header or optionally an *F ±£ ho „ codin g 

the JPEG 2000 Tags can instead be used to specify 

units are decrypted. 

^ the JPEG 2000 image header contains an 

In such an embedment the .PB ^ ^ ^ ^ 

""^T In L ryption Header (EH) should then be appended to 

20^0 ilgTbeadef and encryption information can 
optionally be merged into JPEG 2000 Tags. 

In Fig s an encryption header is shown. ™ 

can in' s-h an embodiment contain the following symbols. 
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ivm) A set of standard encryption modes are 
1) Encryption Mode (EM) . a set 

defined e.g. 

a) One encryption method is used for all coding units 

b Bitplanes of less significance than bitplane X are encrypted 

e) Subbands of higher resolution than Y are encrypted 

d) ROIs specified in are encrypted, etc. 

• *„™ a Hn n need to included in the Tags if an EM 
No encryption information neea to 

is defined. 

2) Encryption Mode Parameters (EMP) Parameters (X. Y, ...) that 
are used to define the Encryption Mode are set here. 

3) Number of encryption methods used. Several encryption methods 
can be used within the same image if e.g. different user groups 
should be allowed to see different image content. 

nescriotor (EMD) for each encryption 

4) One Encryption Method Descriptor , ^ . . the 
method The EMD defines any data that is needed by the 

pri ,ate *ey for decrypting ^£££%Z£«> ***** 

5) Th e bitstrea, «« for ^ -^^•^'Ut J; one 

Unit Ba crypt- state < ^ ^ encryp cion header or 

symbols could either K= bits treem es encryption 

alternatively be distributed in the bit header we 

C ags. If the UBS information is *ept » the encryp ^ 
de£ ine a header element - Bncryptio . State ES> ^ ^ 

a series of TOS synfcols that are listed m the 
coding units appears in the bit stream 

„ EE is set and the Encryption state is not given in the 
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v, <ier JPEG 2000 Tags can be expanded to contain Unit 
r^ion State (uJ) symbols. UES defines which encryptxon 
S!" - -t is used for encrypting the next codxng 

unit . 

r-«c^: e coding longing to the « for 

encryption. 

• ->,»♦. t-he shape of the ROI might reveal the 
The main problem xs that the shape diffic ult 
content. If the shapes are encrypted xt xs, howe . 
to show a reduced quality image since xt xs dxffxcult to 
interpret the coded transform coefficients. 

shape <=-shape . Thus, t c _ ^ designed co 

shape is a bounding box. 

stress,. The c-shape receded veriEicatio „ «odel 

Charilaos chrrstopoulos led. I. deS cribed therein 



header. 



,- 0 _ . haDe and the transform 
A .as, is created — g «>e ' shape ^ 
coefficients belonging to the c s P ^ ^ 

U sing the .ethod as described herein T ^ 
al l coefficients belonging to any ^ ^ chus 

by the =-shape are encrypted. The text 
protected by encryption. 

The shape of th= ^J^^^^ ~ 
encryption header. The encryp correspond ing c-sha P e. 
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belonging to the c-shape is also decrypted. The bitstrea* =an 

rearranged so that the c-shape is dropped and the 
Z£1ZT~ structures are restored. B ote that this is 
done in the compressed domain. 

v rtat is used for encoding a HOI is not uniquely defined 
A Js* that is sufficiently large so that the KOX 
rn JPEG 2000^ A ^ ^ ^ subbands . A 

ir^t is n t a - wed to expand will lead to a lossy encoding 
7thT£x The mas*s belonging to different HOXs or to a BOI 
and the background can he designed to overlap. This means that 

Te^r InL^el: so that any « can he accessed and decoded 
with a good visual result. 

for ROIs described herein is not 
Th e partial encryption -f-^"^ as che maslc is selected 
dependent of the "J^ZX Reconstructed fro. the 
» that the content of a ™ R „ ethod £or b uilding a 

content of any other ROI or 3 described in Charilaos 

— that hides the conten ^ Verslon 

Christopoulos (ed-), J?EG ^ uuu 

By usi ng the method and ^^J^T^^T ^ 
b aad.idth retirements to, jJ^^^L. and processing of 
reduced. Furthermore. *J«*^ J MU ca n be encrypted, 
encrypted objects and the original 

re^rde^d and restored in the compressed domain. 

Moth er advantage is - .es^eed e^ 

performed at the same time as e 3^ ^ (at the 
^ Process taKes place xnt ^ ^ ^ . rages „ ittout 
bitstream syntax) it IP £orm ed just before 

encryption. The ■^ t "» J"*/ (transc oder, . In this case, 

transmitting the image by a parser 
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. i w . rate which will be the case 
If the encryption increases £ se ^ fcitrate 

if the encryption is placed rn the M, the 
is avoided and the encryption rnformatron is oniy a 
transmitting it- 
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CLAIMS 

t . A neth9 d of partially encrypting taage data comprising the 
Hodi^ t*e ta9 e data using an encoding algorithm generating 
independently f^^^X mlts , ^d 

1 S^rjri ere not. encrypted with coding units 
wbich are encrypted into e combined bitstream. 

2 R .ethod according to claim 1, =h«»=terised , that t* . not 
encrypted coding units correspond to a low resolut.on versxon o* 
the image data. 

methods . 

* i - 3 # characterized in 

4 a method according to any of claims 1 3, 

m Kon flag which indicates if a coding unit is 
that an encryption flag, 
encrypted, is inserted in the bit stream. 

, 4njI to a ny of claims 1 - 4, when information 

5 a method according to any oi 

enclosed in a cloaking shape. 

. A device £ or partial encryption o< image d a te characterised 

"Isans £ or cod,, the ^^^^J^. 

r= means ,or encrypting at least 

« ° f ~ ^^Lrfoainruaits which are not encrypted with 

«. „i a im 6 characterized by for 

selecting versio n of the image data, 

to a low resolution version 
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8 . h device acccrdin, « any of — « " * 
coding methods. 

* „ 1a ^c 6-8. characterise od by 
o A device according to any of claims 6 8, c _ 
9. a vicvo. „ fTaa which indicates it a 

naans for inserting an encryptxon flag, war 
coding unit is encrypted, in the bxt stream. 

shape . 
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